In the Claims 

1 . (Currently amended) A method for transmitting data over a wireless link to a 
gateway providing access to a wide area network , the method comprising: 

encrypting a payload according to a first encryption algorithm ; 

adding a header to the encrypted payload to form a data packet; 

encrypting the encrypted payload and the header of the data packet according to a 
second encryption algorithm, the second encryption algorithm being an encryption 
algorithm used for secured communications over the wireless lin k so that th e payload is 
at l e ast twic e e ncrypt e d and th e h e ad e r is at l e ast onc e-e ncrypt e d ; and 

transmitting the encrypted data packet over the wireless link only aft e r at l e ast 
twic e e ncrypting th e payload . 

2. (Currently amended) The method of claim 1, wherein the first algorithm uses 
e ncrypting a payload furth e r compris e s e ncrypting th e payload with a symmetric key. 

3. (Currently amended) The method of claim 1 , further comprising: 

receiving the data packet at the gateway a first d e vic e; 

p e rforming a . first d e cryption of th e decrypting data packet at the gateway by 
according to the second algorithm first d e vic e; 

forwarding the recovered data packet to a computer on the wide area network 
s e cond d e vic e; and 

p e rforming a s e cond d e cryption of decrypting the payload at the computer on the 

-2- Serial No. 09/927,928 



LAW OFFICES OF 
MacPherson, Kwok, Chen & 
Heid IJ.I> 

1762 TethiK)l<»i!y Drive, Suite 226 
Sun Jose. CA 95110 

(408)-392-<)52O 
FAX(408)-392-9262 



wide area network according to the first algorithm s e cond d e vic e. 

4. (Currently amended) The method of claim 1, furth e r comprising: 
cr e ating wherein the first algorithm uses a symmetric session keyt 
wh e rein th e payload is e ncrypt e d with th e symm e tric s e ssion k e y . 

5. (Canceled). 

6. (Currently amended) A device for transmitting data over a wireless link to a 
gateway providing access to a wide area network , comprising: 

a wireless transceiver; and 

an encryption engine coupled to the wireless transceiver for encrypting a 
payload according to a first encryption algorithm, adding a header to the payload to 
form a data packet, and encrypting the data packet according to a second algorithm , the 
second encryption algorithm being an algorithm for secured communications over the 
wireless link t 

a proc e ssor coupl e d to th e e ncryption engin e and to th e wir e l e ss transc e iv e r and 
configur e d to e x e cut e the encr>ption algorithms . 

7. (Canceled). 

8. (Currently amended) The device of claim 6, wherein the payload fiirth e r 
comprises location information regarding the location of the wireless device, 

9. (Currently amended) The device of claim 6, wherein the first encryption 
algorithm employs a symmetric key. 
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1 0. (Currently amended) A method for secured communication between a mobile 
device and a server on a wide area network, comprising: 

generating a symmetric session key at the mobile a first device; 

encrypting the symmetric session key at the fest- mobile device using a public 
key associated with a second d e vic e the server : 

transmitting the encrypted session key to the server over a wireless link with 
a gateway to the wide area network s e cond d e vic e; 

decrypting the encrypted session key at the server s e cond d e vic e using a 
private key associat e d with corresponding to the public key; 

encrypting a payload using the symmetric session key at the mobile fet device; 

adding a header to the payload to form a data packet at the first mobile device; 

encrypting the encrypted payload and the header of the data packet using an 
encryption algorithm for secured communications over the wireless link to form an 
encrypted data packet at the fifst mobile device; and 

transmitting the encrypted data packet from the mobile first device to the 
gateway . 

1 1 . (Currently amended) The method of claim 10, further comprising: 
receiving the encrypted data packet at the gateway a third d e vic e; 
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decrypting the encrypted data packet at the third d e vic e to form gateway to 



recover a decrypted data packet, the decrypted data packet having an the encrypted 
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payload encrypted with the symmetric session key ; 

forwarding the decrypted data packet to the server over the wide area network 
second d e vic e; 



decrypting the payload at the server s e cond d e vic e using the decrypted session 



key. 



12-14, (Canceled). 

15. (Original) The method of claim 10, wherein the payload includes location 
information. 

16. (Currently amended) The method of claim 10, wherein the generating a 
symmetric session key at a first the mobile device further comprises generating the symmetric 
session key based on a random number. 

17. (Original) The method of claim 10, wherein the encrypting a payload using the 
symmetric session key employs at least one of the encryption algorithms DESX or DES. 

18-19. (Canceled). 

20. (Currently amended) The method of claim i 4-8, wherein the e ncrypting a 
payload furth e r compris e s e ncrypting th e payload using first algorithm comprises at least one 
of the encryption algorithms DESX or DES. 

21-24. (Canceled). 

25 . (Currently amended) The method of claim QAr i, wherein the data packet 
includes location information. 
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26. (Currently amended) The method of claim 4 24-, wherein the g e n e rating a 
symmetric session key is generated at a first d e vice furth e r compris e s g e n e rating th e symm e tric 
session k e y based on a random number. 

27. (Currently amended)A The device of Claim 6, further comprisingr 
a processor; 

a wir e l e ss transc e iv e r coupled to th e proc e ssor for transmitting an e ncrypt e d data 
pack e t to a s e rv e r; 

a memory coupled to the encryption engine processor , the memory having a 
public key associated with the a server on the wide area network p e rman e ntly stored 
thereint 

wh e r e in th e proc e ssor e ncrypts th e encrypt e d data pack e t using th e public k e y . 

28. (Canceled). 

29. (Currently amended) A computer readable medium, comprising program 
instructions for performing a method comprising: 

encrypting a payload according to a first encryption algorithm ; 

adding a header to the encrypted payload to form a data packet; 

encrypting the encrypted payload and the header of the data packet according to a 
LAW oFricEs OK sccond encryption algorithm, the second encryption algorithm being an encryption 
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least twic e e ncrypted and the head e r is at l e ast onc e e ncrypted ; 
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transmitting the data packet to a server on a wide area network over a wireless 
link with a gateway providing access to the wide area network only aft e r at least twic e 
e ncrypting th e payload . 

Please add new claims 30-35 as follows: 

30. (New) The computer readable medium of claim 29, wherein the first algorithm 
uses a symmetric key. 

31. (New) The computer readable medium of claim 29, the method further 
comprising: 

receiving the data packet at the gateway; 

decrypting data packet at the gateway by according to the second algorithm first 

d e vic e; 

forwarding the recovered data packet to a computer on the wide area 
network; and 

decrypting the payload at the computer on the wide area network according to the 
first algorithm. 

32. (New) The computer readable medium of claim 29, wherein the first 
algorithm uses a symmetric session key. 

33. (New) The computer readable medium of claim 29, wherein the first algorithm 
comprises at least one of the encryption algorithms DESX or DES. 

34. (New) The computer readable medium of claim 29, wherein the data packet 



-7- 



Serial No. 09/927,928 



includes location information. 

35. (New) The computer readable medium of claim 32, wherein the symmetric 
session key is generated based on a random number. 
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